1cdd4365cf635d54e29f6c8ed5106338b9071d32dd1f8ee36937cfd5a91890b0

Sharing

Copy URL

Twitter E-mail

General

Target

1cdd4365cf635d54e29f6c8ed5106338b9071d32dd1f8ee36937cfd5a91890b0
Size

792KB
MD5

58c2a598cc07ee56145399baf382c452
SHA1

8c901ca5f85945d09d9105822a33a8230dc66dfd
SHA256

1cdd4365cf635d54e29f6c8ed5106338b9071d32dd1f8ee36937cfd5a91890b0
SHA512

b0a4c4a7156771c8d845f2ddc9e6fb52eb8980794ab42557dc6290eff44ccb16475690ae4d7fb939d0ea3d6e7b5716921de41e364dba0c46726499424ed6cacd
SSDEEP

24576:67edEz/rmnbHDK0Bq4wvXIDMNR///voFSu:az/dR///voF5

Score

N/A

Malware Config

Signatures

Files

1cdd4365cf635d54e29f6c8ed5106338b9071d32dd1f8ee36937cfd5a91890b0
.dll regsvr32 windows x86

8bc2fb6a1c94da07f8a249263179ab45

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

d3d8

Direct3DCreate8

kernel32

DeleteCriticalSection
DisableThreadLibraryCalls
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
LockResource
SetCurrentDirectoryA
GetCurrentDirectoryA
GetFileSize
MapViewOfFile
CreateFileMappingA
CreateFileW
GetVersionExA
UnmapViewOfFile
FindResourceW
HeapFree
GetProcessHeap
GetProcAddress
WriteFile
IsProcessorFeaturePresent
ReadFile
GetCommandLineA
HeapReAlloc
CompareStringA
FlushFileBuffers
GetLocaleInfoW
SetStdHandle
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
HeapDestroy
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
LCMapStringW
LCMapStringA
RaiseException
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
IsDBCSLeadByte
lstrcmpiA
IsBadWritePtr
VirtualAlloc
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
HeapAlloc
Sleep
ExitProcess
TerminateProcess
HeapCreate
VirtualFree
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
SizeofResource
GetModuleHandleA
GetShortPathNameA
lstrlenW
WideCharToMultiByte
lstrlenA
MultiByteToWideChar
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameA
lstrcpynA
FreeLibrary
GetCurrentProcess
FlushInstructionCache
LoadLibraryA
MulDiv
QueryPerformanceFrequency
QueryPerformanceCounter
GetFullPathNameA
CreateFileA
CloseHandle
lstrcpyA
lstrcatA
CompareStringW
SetEnvironmentVariableA
GetVersion

shell32

ShellExecuteA

gdiplus

GdipBitmapUnlockBits
GdipDeleteGraphics
GdipFree
GdiplusShutdown
GdipCreateBitmapFromResource
GdipSetStringFormatAlign
GdipCreateBitmapFromFileICM
GdipCreateFontFamilyFromName
GdipCreateFont
GdipCreateSolidFill
GdipCreateStringFormat
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipDrawString
GdipDeleteStringFormat
GdipDeleteFont
GdipDeleteFontFamily
GdipDisposeImage
GdipCloneImage
GdipCloneBrush
GdiplusStartup
GdipAlloc
GdipCreateBitmapFromStream
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageRawFormat
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetInterpolationMode
GdipDrawImageRectRectI
GdipCreateLineBrushFromRect
GdipFillRectangle
GdipCreateLineBrushFromRectI
GdipFillRectangleI
GdipBitmapLockBits
GdipDeleteBrush

ddraw

DirectDrawCreate

winmm

timeGetTime

user32

SystemParametersInfoA
MapWindowPoints
SetDlgItemTextA
GetDlgItemTextA
EndDialog
DialogBoxParamA
TrackMouseEvent
PeekMessageA
wsprintfA
CallWindowProcA
UnhookWindowsHookEx
DestroyWindow
PostMessageA
SetCursor
GetSysColorBrush
LoadCursorA
GetWindow
GetSystemMetrics
CreateWindowExA
GetDC
ReleaseDC
SetWindowLongA
IsWindowUnicode
SetWindowsHookExA
ShowWindow
UpdateWindow
DefWindowProcA
GetAsyncKeyState
GetParent
LoadStringA
wsprintfW
CharNextA
RegisterWindowMessageA
CallNextHookEx
SetWindowPos
GetWindowLongA
GetWindowRect
GetClientRect
RegisterClassA

gdi32

CreateDIBSection
SetMapMode
GetDeviceCaps
CreateFontA
SetTextColor
SetBkColor
SetTextAlign
GetTextExtentPoint32A
ExtTextOutA
CreateDIBitmap
CreateCompatibleDC
SelectObject
BitBlt
DeleteObject
DeleteDC

advapi32

RegCreateKeyExA
RegOpenKeyA
RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegCloseKey
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CreateStreamOnHGlobal
CoTaskMemFree

oleaut32

LoadRegTypeLi
VarUI4FromStr
SysStringLen
SysAllocString
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8bc2fb6a1c94da07f8a249263179ab45

Headers

File Characteristics

Imports

d3d8

kernel32

shell32

gdiplus

ddraw

winmm

user32

gdi32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 380KB - Virtual size: 379KB

.rdata Size: 40KB - Virtual size: 37KB

.data Size: 40KB - Virtual size: 59KB

.data1 Size: 4KB - Virtual size: 2KB

.rsrc Size: 188KB - Virtual size: 185KB

.reloc Size: 24KB - Virtual size: 20KB

.text Size: 112KB - Virtual size: 112KB

.text
Size: 380KB - Virtual size: 379KB

.rdata
Size: 40KB - Virtual size: 37KB

.data
Size: 40KB - Virtual size: 59KB

.data1
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 188KB - Virtual size: 185KB

.reloc
Size: 24KB - Virtual size: 20KB

.text
Size: 112KB - Virtual size: 112KB